update permission

2025-03-13 14:48:26 +07:00 · 2025-03-13 14:48:26 +07:00 · 78bdca4e23
parent e026b70e66
commit 78bdca4e23
3 changed files with 3 additions and 3 deletions
--- a/BACKEND/Modules/Admin/routes/api.php
+++ b/BACKEND/Modules/Admin/routes/api.php
@ -220,7 +220,7 @@ Route::middleware('api')
            Route::group([
                'prefix' => 'document',
            ], function () {
-                Route::get('/all', [DocumentController::class, 'all'])->middleware('check.permission:admin');
+                Route::get('/all', [DocumentController::class, 'all'])->middleware('check.permission:admin.hr.staff.accountant');
                Route::post('/create', [DocumentController::class, 'create'])->middleware('check.permission:admin');
                Route::post('/update', [DocumentController::class, 'update'])->middleware('check.permission:admin');
                Route::get('/delete', [DocumentController::class, 'delete'])->middleware('check.permission:admin');
--- a/FRONTEND/src/components/Navbar/Navbar.tsx
+++ b/FRONTEND/src/components/Navbar/Navbar.tsx
@ -76,7 +76,7 @@ const data = [
    link: '/documents',
    label: 'Documents',
    icon: IconFileInvoice,
-    permissions: 'admin',
+    permissions: 'admin,hr,staff,tester,accountant',
    group: 'staff',
  },
  {
--- a/FRONTEND/src/routes/main.tsx
+++ b/FRONTEND/src/routes/main.tsx
@ -85,7 +85,7 @@ const mainRoutes = [
  {
    path: '/documents',
    element: (
-      <ProtectedRoute mode="home" permission="admin">
+      <ProtectedRoute mode="home" permission="staff,accountant">
        <BasePage
          main={
            <>